The docs don't mention when the kubelet will attempt to renew a cert,
which causes concern when one notices that certain certificates are being
renewed and others are not. Adding the time frame adds certainty, so that
if an user notices a kubelet cert expiring in less than 30d, they know
something is misconfigured and should be looked at.
sibucan
Jordan Liggitt
abhiTamrakar
Karen Bradshaw
Pablo Castellano
Zach Corleissen
Bjørn Erik Pedersen